Overview

overview

10

Static

static

10

2024-11-27...er.exe

windows7-x64

1

2024-11-27...er.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-11-27_548e27ccdb7dbda9b3b72231551b1587_ismagent_ryuk_sliver

  • Size

    3.3MB

  • Sample

    241127-lpxvnsvmaq

  • MD5

    548e27ccdb7dbda9b3b72231551b1587

  • SHA1

    16b688626a1d23a05f84203d276617d91076545d

  • SHA256

    e3ae318283a5beb72d00449b81cfb885077d37dcad8e67f03b657025a0ac8075

  • SHA512

    9ee977311eb58c8ea4c4b046c1ed5a14b849e78434d23358308470bdc1247fc120b989ca507c644a0cfecd4a36df9928ab833ef8ef9f2b4e228bc43dbbc71148

  • SSDEEP

    49152:Yf708gNcR9l5NyQB7q1AlgraPgDLDVXI2RXgGfX2kMFvfAw6dZ7Nueuxg5A7:Y+49lnyeG3D56gXm6Hq7

Score
10/10
meshagent76-2

Malware Config

Extracted

Family

meshagent

Version

2

Botnet

76-2

C2

http://control3.colizeumarena.ru:443/agent.ashx

Attributes
  • mesh_id

    0x9562BBE60825FEA0DAA61A74F4FDB685EE94ACF6090C7D112F102EFD0D9F1A9A38CB586186FE5E68805AA06FAC11265D

  • server_id

    C1139252AFB8BB79497F4C3FFFE817B4721FC57DF5DB25C1AFDFE4C5780D3D815802672B52644A626A44410DFFDE7D27

  • wss

    wss://control3.colizeumarena.ru:443/agent.ashx

Targets

    • Target

      2024-11-27_548e27ccdb7dbda9b3b72231551b1587_ismagent_ryuk_sliver

    • Size

      3.3MB

    • MD5

      548e27ccdb7dbda9b3b72231551b1587

    • SHA1

      16b688626a1d23a05f84203d276617d91076545d

    • SHA256

      e3ae318283a5beb72d00449b81cfb885077d37dcad8e67f03b657025a0ac8075

    • SHA512

      9ee977311eb58c8ea4c4b046c1ed5a14b849e78434d23358308470bdc1247fc120b989ca507c644a0cfecd4a36df9928ab833ef8ef9f2b4e228bc43dbbc71148

    • SSDEEP

      49152:Yf708gNcR9l5NyQB7q1AlgraPgDLDVXI2RXgGfX2kMFvfAw6dZ7Nueuxg5A7:Y+49lnyeG3D56gXm6Hq7

    Score
    1/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks